Commit Graph

765 Commits

Author SHA1 Message Date
El RIDO 8619f4248b
Merge branch 'master' into styleci 2016-11-01 06:29:33 +01:00
rugk 64e1e0d7c4
Merge branch 'master' 2016-10-31 12:20:29 +01:00
rugk f9149595c9
Change alert to loading info message 2016-10-31 12:20:07 +01:00
rugk f628ac78f8
Fix style of operator spaces 2016-10-31 11:32:12 +01:00
rugk b4293f5467
Add missing fixers from PHP CS
Also adjust editorconfig and order php-cs.
2016-10-31 11:29:25 +01:00
El RIDO bd30ae419a
Merge branch 'nolsen42-master' 2016-10-29 12:24:25 +02:00
El RIDO 375dac759f
renamed jQuery file to match projects JS file naming convention 2016-10-29 12:18:03 +02:00
El RIDO f093b05330
update jQuery from 1.11.3 to 3.1.1 2016-10-29 12:12:22 +02:00
El RIDO 1f46823942
applying patch based on StyleCI ruleset 2016-10-29 10:24:08 +02:00
El RIDO c8b1296929
add adjusted StyleCI ruleset 2016-10-29 10:19:09 +02:00
rugk 7bbb273c1c
Add "JS not working" error message
It is:
* hidden by JS code executed as early as possible
* not hidden by noscript tags, so that it is *not* shown when JavaScript is just no activated

Fix https://github.com/PrivateBin/PrivateBin/issues/103
2016-10-25 21:13:43 +02:00
rugk 5d822af5b1
Regenerate JS hashes & sign commit 2016-10-25 19:03:20 +02:00
El RIDO b80665cc45 Merge pull request #121 from stefanomarty/Italian-translation
Italian translation
2016-10-23 21:58:31 +02:00
stefanomarty af824bbcd6 Update privatebin.js
Added 'it' supported language.
2016-10-23 11:28:04 +02:00
stefanomarty a714272286 Create it.json
Created Italian translation.
2016-10-23 11:25:38 +02:00
Nathaniel Olsen 3eea03954a Forgot to delete this 2016-10-22 09:47:40 -05:00
El RIDO eb77a01322 Merge pull request #113 from PrivateBin/bettercredits
Renew credits
2016-10-22 08:35:58 +02:00
Nathaniel Olsen 176d683d1c Forgot to add the file using git 2016-10-21 17:07:55 -05:00
Nathaniel Olsen 63a6ecb922 Now using the minimal version of jQuery 2016-10-21 17:06:22 -05:00
rugk 8619210c33
Add note for reproduction on official site
This should make sure, users try to reproduce the issue on the official domain.
2016-10-21 22:14:44 +02:00
Nathaniel Olsen 0a48c464b4 Update jquery 1.11.3 ==> 3.1.1 2016-10-21 10:31:56 -05:00
Nathaniel Olsen 5639042d12 Update jquery 1.11.3 ==> 3.1.1 2016-10-21 10:31:09 -05:00
rugk bc9bb7eeca
Remove old backup 2016-10-17 21:14:12 +02:00
rugk c7c82c8305
Update random_compat
New release: v2.0.3 - https://github.com/paragonie/random_compat/releases/tag/v2.0.3
2016-10-17 21:12:13 +02:00
rugk f5813c959c
Fix typo 2016-10-12 18:59:18 +02:00
rugk cc637bd3f3
Renew credits
Split in active contributors & old contributors.
2016-10-12 18:26:57 +02:00
rugk efffeddc25
Merge branch 'master' of https://github.com/PrivateBin/PrivateBin 2016-09-18 12:23:07 +02:00
rugk 2cd4717bd2
Use default csp value by default
Otherwise the CSP may break updates if we later change the behaviour of PrivateBin somehow.
We should have done this before the v1.0 release, but well...
2016-09-18 12:21:42 +02:00
El RIDO 8cfcf1c9f5
Adding HTTP headers to address certain XSS attacks, resolves #91 2016-09-18 11:29:37 +02:00
rugk ec7af3a738
Improve formatting 2016-09-14 23:55:55 +02:00
rugk 8cb1a0a14d
Improve issue template 2016-09-03 18:23:03 +02:00
rugk 23febfc5ca
Remove unintentially submitted test file 2016-09-03 18:14:14 +02:00
rugk 1a159c973f
Prevent referrer to be send
Uses both CSP and Referrer-Policy
Fixes #96
2016-09-03 18:12:24 +02:00
rugk b7184b92a3 Fix csp config unit tests 2016-08-27 14:47:21 +02:00
El RIDO 7da4723112 Merge pull request #97 from matunixe/master
Fix some french translation issues (typo + minor problems).
2016-08-27 13:53:50 +02:00
Mathias 8cb9e9d871 Fix some french translation issues (typo + minor problems). 2016-08-27 12:33:44 +02:00
rugk b11866a63b Allow manifest loading via CSP (2) 2016-08-27 00:02:50 +02:00
rugk 9ff74e8841 Allow manifest loading via CSP 2016-08-27 00:01:19 +02:00
El RIDO a13266a784 ensure the server salt path is initialized, instead of relying on the default 2016-08-25 15:02:38 +02:00
El RIDO e925833090 bumping version number to 1.0 2016-08-25 09:53:31 +02:00
rugk 2ee9325f49 Make clear that HTTPS provides basic security...
whereas the other things are advantaged security features.
2016-08-24 23:28:54 +02:00
rugk 2cde59821a Add FAQ note to issue template 2016-08-24 17:35:29 +02:00
rugk 932c0b573d More useful links for Libsodium installation
Also mentioning one needs to install the PHP extension too.
2016-08-24 16:43:44 +02:00
rugk 61f0eaa757 Fix typo 2016-08-23 20:56:45 +02:00
rugk 1bc2caf459 Correct order of PRNG
As stated in 76e90f747b/ERRATA.md
2016-08-23 20:56:14 +02:00
rugk 19e5467b79 Revert "Add PHPv7 to list of "requires /dev/urandom in open_basedir""
This reverts commit b229fb6041.
2016-08-23 20:44:16 +02:00
rugk b229fb6041 Add PHPv7 to list of "requires /dev/urandom in open_basedir" 2016-08-23 17:24:51 +02:00
El RIDO 91eabd8489 readded /dev/urandom, the primary source for safe randomness in PHP 7, random_compat and mcrypt 2016-08-23 08:54:26 +02:00
rugk 226a64d8a4 Clarify randomness & add PDO link
* Remove "some disk space" - Everyone knows that files need some place to be stored. Additionally nowadays disk space is not problem in general.
* Add link to PDO.
* Clarify randomness. I am however not sure whether `com_dotnet` needs access to `/dev/urandom` (with open_basedir set).
2016-08-22 19:28:20 +02:00
El RIDO 3d7b35aed4 PSR-2/4 fixes 2016-08-22 16:20:14 +02:00